Crack

What is “HackTool:Win32/Hackav!MSR”?

Malware Removal

The HackTool:Win32/Hackav!MSR is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What HackTool:Win32/Hackav!MSR virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Guard pages use detected – possible anti-debugging.
  • Dynamic (imported) function loading detected
  • A process created a hidden window
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Executable file is packed/obfuscated with MPRESS
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality

How to determine HackTool:Win32/Hackav!MSR?



File Info:

name: BC9BD793395F3569D6F9.mlw
path: /opt/CAPEv2/storage/binaries/baef7c7e8293fa6161da35a07a2e6006b05d9b539ea3eb3403bcd4c8f6f0b13c
crc32: BDEC9E05
md5: bc9bd793395f3569d6f971274c4f2d2e
sha1: 58944933a2d22ce6a55be68ab9a574893fe68ef3
sha256: baef7c7e8293fa6161da35a07a2e6006b05d9b539ea3eb3403bcd4c8f6f0b13c
sha512: f21b2c45387db6f494591051ed7b4322a2b741401ecaafe5fb37e651a86193c00e14f62821355477439933c07ef1bdc1a39ce6ee8bd425f3fb713001c94da246
ssdeep: 384:/DL5jcNeDoqECWR7DW1X0fGXL7tZFPwlJVfBx2KtBwWF9c8YCYs4DxrNq7MaJX7D:/DL5jeeDoqEZ74Xug7UnZxfHrQQj7D
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CCB2CFB7D2AC56A2C5588C76119FB81E5421763C121483E8F74A237FBCC87988F5C3A3
sha3_384: c42018ae1b4b0ca2d40154bc2d0b7293fb94f44fbe70a44a3864d62f827d94db68417d1182670e3de9f68ae02ba15269
ep_bytes: 60e80000000058055a0b00008b3003f0
timestamp: 2011-03-25 13:17:42


Version Info:

0: [No Data]

HackTool:Win32/Hackav!MSR also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Generic.me2u
CAT-QuickHealTrojan.Urelas.S14252
CylanceUnsafe
CyrenW32/S-b36cd6f5!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32BAT/HackAV.L
ClamAVWin.Packed.Mpress-9869657-0
SUPERAntiSpywareTrojan.Agent/Gen-Mudrop
TencentBat.Risk.Hackav.Pijz
SophosGeneric ML PUA (PUA)
ComodoTrojWare.Win32.CoinMiner.IEGT@57p1bc
FireEyeGeneric.mg.bc9bd793395f3569
SentinelOneStatic AI – Malicious PE
GDataWin32.Trojan.BSE.1R2OIER
JiangminTrojan.Generic.ccxfh
eGambitUnsafe.AI_Score_99%
KingsoftWin32.Heur.KVMH008.a.(kcloud)
MicrosoftHackTool:Win32/Hackav!MSR
MalwarebytesMalware.AI.804191239
YandexPacked/MPress
MaxSecureTrojan.Malware.300983.susgen
WebrootW32.Malware.Heur

How to remove HackTool:Win32/Hackav!MSR?

HackTool:Win32/Hackav!MSR removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment